Buffer Overflow Vulnerability in Oracle 9i Database Server's dbms_system.ksdwrt Function

CVE-2004-0638 · HIGH Severity

AV:N/AC:M/AU:S/C:C/I:C/A:C

Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument.

Learn more about our Cis Benchmark Audit For Server Software.